Setting Up Forward Proxy

1. Configure your network

  • In an Active Directory environment, use Group Policy Objects (GPOs) to enforce the use of the proxy server
  • In a Novell environment, use ZENworks to enforce the use of the proxy server

2. Configure your Rocket or Bottle Rocket appliance as a proxy server

  • Connect the Management port on the Rocket appliance to a port on your LAN switch
  • Log into this appliance
  • Navigate to Web Filter and click on Proxy Server
  • Scroll to Proxy ServerUnder the Proxy Port section, input the Port you would like the rocket to listen for proxy connections on. This is by default port 8080 but can be any non standard port (we chose Port 8093 in the example below.)
  •  Determine and set up the level of  Proxy security that is best for your environment. You can learn more about proxy security here.

3.  Install the SSL certificate from the Rocket appliance.

Note: The Proxy server will still work if you do not complete step 3, but some SSL sites will continuously show a warning message that indicated that there is a man-in-the-middle proxy and that your connection is not private, resulting in an unpleasant and distracting web browsing experience
  • Download the SSL certificate from the Rocket appliance by going to the fully qualified domain name (fqdn) at http://(fqdn)/lsaccess/proxycert URL. You will need to use the FQDN of the proxy to access the URL and download the certificate.
    Note: You can also download the SSL certificate by navigating to Settings > SSL Certificate in your Rocket and clicking on Download to the left of the certificate (below Download Links).
  • Install the SSL certificate on any of your proxy clients. You can push it out through a GPO (Microsoft Active Directory) or ZENworks (Novell) at the same time that you push out the proxy settings.